Search icon Close icon
Search icon
Subscription
0
Cart icon
Close icon
You have no products in your basket yet
Arrow left icon
All Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Newsletters
Free Learning
Arrow right icon
Node.js Web Development.. - Fifth Edition

You're reading from  Node.js Web Development.. - Fifth Edition

Product type Book
Published in Jul 2020
Publisher Packt
ISBN-13 9781838987572
Pages 760 pages
Edition 5th Edition
Languages
Concepts
Author (1):
David Herron David Herron
Profile icon David Herron
LinkedIn
David Herron is a software engineer living in Silicon Valley who has worked on projects ranging from an X.400 email server to being part of the team that launched the OpenJDK project, to Yahoo's Node.js application-hosting platform, and a solar array performance monitoring service. That took David through several companies until he grew tired of communicating primarily with machines, and developed a longing for human communication. Today, David is an independent writer of books and blog posts covering topics related to technology, programming, electric vehicles, and clean energy technologies.
See other products by David Herron

Table of Contents (19) Chapters

Preface 1. Section 1: Introduction to Node.js
2. About Node.js 3. Setting Up Node.js 4. Exploring Node.js Modules 5. HTTP Servers and Clients 6. Section 2: Developing the Express Application
7. Your First Express Application 8. Implementing the Mobile-First Paradigm 9. Data Storage and Retrieval 10. Authenticating Users with a Microservice 11. Dynamic Client/Server Interaction with Socket.IO 12. Section 3: Deployment
13. Deploying Node.js Applications to Linux Servers 14. Deploying Node.js Microservices with Docker 15. Deploying a Docker Swarm to AWS EC2 with Terraform 16. Unit Testing and Functional Testing 17. Security in Node.js Applications 18. Other Books You May Enjoy

Summary

In this chapter, we've covered an extremely important topic, application security. Thanks to the hard work of the Node.js and Express communities, we've been able to tighten the security simply by adding a few bits of code here and there to configure security modules.

We first enabled HTTPS because it is now a best practice, and has positive security gains for our users. With HTTPS, the browser session is authenticated to positively identify the website. It also protects against man-in-the-middle security attacks, and encrypts communications for transmission across the internet, preventing most snooping.

The helmet package provides a suite of tools to set security headers that instruct web browsers on how to treat our content. These settings prevent or mitigate whole classes of security bugs. With the csurf package, we're able to prevent cross-site request forgery (CSRF) attacks.

These few steps are a good start for securing the Notes application. But you should...

lock icon The rest of the chapter is locked
arrow left Previous Chapter
Chapter 1 of 19
Next Chapter arrow right
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Sign up now
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Start free trial
Renews at $15.99/month. Cancel anytime}

Authors (1)

Profile icon David Herron
LinkedIn
David Herron is a software engineer living in Silicon Valley who has worked on projects ranging from an X.400 email server to being part of the team that launched the OpenJDK project, to Yahoo's Node.js application-hosting platform, and a solar array performance monitoring service. That took David through several companies until he grew tired of communicating primarily with machines, and developed a longing for human communication. Today, David is an independent writer of books and blog posts covering topics related to technology, programming, electric vehicles, and clean energy technologies.
Read more
See other products by David Herron

Other recommended products

Related to this chapter
Docker Certified Associate (DCA): Exam Guide
Docker Certified Associate (DCA): Exam Guide
With the rise of containerization, skills in containers especially Docker have higher market value. Docker Certified Associate (DCA) is the official exam designed to validate that skillset with real-world questions. This book will cover all topics required to successfully pass the Docker Certified Associate exam.
Sep 2020 20 hours 24 minutes
Node Cookbook
Node Cookbook
The fourth edition of Node Cookbook covers the latest features and libraries of Node.js 14. With this recipe-based guide, you’ll learn how to handle files, build simple web applications, and build your own modules using Node.js. You’ll also be able to diagnose problems in your apps, handle security concerns, and deploy your apps to the cloud.
Nov 2020 17 hours 4 minutes
Professional JavaScript
Professional JavaScript
Professional JavaScript is your one-stop solution to mastering modern JavaScript. This book covers the latest features of JavaScript, and advanced concepts including modularity, testing, and asynchronous programming. By the end of the book, you'll know how to create a full-stack JavaScript application using NodeJS, and how to use JavaScript in functional programming.
Sep 2019 22 hours 8 minutes

Personalised recommendations for you

Based on your interests and search pattern
Left arrow icon
Modernizing Drupal 10 Theme Development
Modernizing Drupal 10 Theme Development
Modernizing Drupal 10 Theme Development covers everything a frontend developer or a Drupal developer needs to know about the Drupal 10 theme layer. Using real-world examples, this book will help you to build up from an empty theme to a fast, responsive, maintainable, and accessible Drupal website in both monolithic and decoupled ways.
Aug 2023 12 hours 0 minutes
Full Stack Development with Spring Boot 3 and React
Full Stack Development with Spring Boot 3 and React
Full Stack Development with Spring Boot 3 and React contains a wealth of practical guidance for picking up full stack development. The step-by-step exploration of everything from dependency injection, ORM with Hibernate, and JWTs to RESTful APIs, UI styling, and TypeScript will help you to develop the Spring Boot and React skills you need.
Oct 2023 15 hours 8 minutes
Modern API Development with Spring 6 and Spring Boot 3
Modern API Development with Spring 6 and Spring Boot 3
This practical guide teaches inexperienced Java programmers and web developers how to design, develop, test, and deploy highly scalable and maintainable APIs using REST, gRPC, GraphQL, and reactive programming paradigms with Java and Spring Boot. Complete with real-world examples, it will guide you to build enterprise-level APIs and services.
Sep 2023 16 hours 28 minutes
Hands-On Web Scraping with Python
Hands-On Web Scraping with Python
This book guides you to discover and extract quality data from the web using Python libraries such as requests, lxml, pyquery, scrapy, and to use effective scraping techniques. It’ll help you master the fundamentals and advanced concepts of web scraping and apply your skills to real-world data extraction tasks, with analysis and visualization.
Oct 2023 10 hours 48 minutes
Mastering Blazor WebAssembly
Mastering Blazor WebAssembly
Mastering Blazor WebAssembly is a comprehensive, practical guide that’ll help you to develop advanced web applications. By combining real-world experience with the thorough knowledge needed to build Blazor apps in a masterful fashion, this book enables you to efficiently manage cross-platform mobile development with .NET MAUI and Blazor.
Aug 2023 12 hours 20 minutes
Mastering Blazor WebAssembly
Mastering Blazor WebAssembly
Mastering Blazor WebAssembly is a comprehensive, practical guide that’ll help you to develop advanced web applications. By combining real-world experience with the thorough knowledge needed to build Blazor apps in a masterful fashion, this book enables you to efficiently manage cross-platform mobile development with .NET MAUI and Blazor.
Aug 2023 12 hours 20 minutes
Full Stack Web Development with Remix
Full Stack Web Development with Remix
Unlock the power of the web platform and cutting-edge technologies for your React applications using Remix to take advantage of the full stack to create a great user experience. This book is a complete resource covering the conventions, levers, and primitives of Remix and illustrates concepts through a real-world project.
Nov 2023 10 hours 36 minutes
Real-World Svelte
Real-World Svelte
This book is a must-have guide to unlocking Svelte's true potential. You’ll learn about advanced component development, efficient coding, and powerful UI patterns using actions. With a focus on state management, custom stores, and renderless components, this book equips you to build exceptional web apps with lightning-fast performance.
Dec 2023 9 hours 24 minutes
Building Micro Frontends with React 18
Building Micro Frontends with React 18
This book is a step-by-step guide to building production-grade, highly scalable, and performant web apps using multi-SPA and micro apps patterns, where you’ll learn to deal with complexities related to micro frontends. The book is a full life cycle guide to building, deploying, and managing micro frontends in a cloud-native environment.
Oct 2023 7 hours 16 minutes
Drupal 10 Masterclass
Drupal 10 Masterclass
This all-in-one guide helps you get up and running with building Drupal applications using the latest Drupal 10 features. You’ll develop a complete practical understanding of Drupal frontend, backend, architecture, content management, themes, and modules to deliver a rich user experience by creating custom Drupal apps.
Dec 2023 10 hours 20 minutes
Full-Stack Flask and React
Full-Stack Flask and React
This book teaches you how to build simple yet efficient production-ready web applications. Starting with an introduction to React, this book will equip you with deeper knowledge of Flask and React technology stacks to undertake web application development with confidence.
Oct 2023 13 hours 36 minutes
Full-Stack Flask and React
Full-Stack Flask and React
This book teaches you how to build simple yet efficient production-ready web applications. Starting with an introduction to React, this book will equip you with deeper knowledge of Flask and React technology stacks to undertake web application development with confidence.
Oct 2023 13 hours 36 minutes
Right arrow icon